{"api_version":"1","generated_at":"2026-06-20T19:55:10+00:00","cve":"CVE-2013-5026","urls":{"html":"https://cve.report/CVE-2013-5026","api":"https://cve.report/api/cve/CVE-2013-5026.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2013-5026","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2013-5026"},"summary":{"title":"CVE-2013-5026","description":"An ActiveX control in lookout650.ocx, lookout660.ocx, and lookout670.ocx in National Instruments Lookout 6.5 through 6.7 allows remote attackers to execute arbitrary code by triggering the download of, and calls to, an arbitrary DLL file.","state":"PUBLISHED","assigner":"mitre","published_at":"2013-08-06 20:55:05","updated_at":"2026-04-29 01:13:23"},"problem_types":["NVD-CWE-noinfo","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"9.3","severity":"","vector":"AV:N/AC:M/Au:N/C:C/I:C/A:C","data":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"}}],"references":[{"url":"http://digital.ni.com/public.nsf/allkb/544407ECC5FEE44086257BCF00735D1F?OpenDocument","name":"http://digital.ni.com/public.nsf/allkb/544407ECC5FEE44086257BCF00735D1F?OpenDocument","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"What Is the Nature of Software Vulnerability NI-64BG6SWQ-6? - National Instruments","mime":"text/html","httpstatus":"404","archivestatus":"200"},{"url":"http://digital.ni.com/public.nsf/websearch/A792DE0703C8108786257B3600506077?OpenDocument","name":"http://digital.ni.com/public.nsf/websearch/A792DE0703C8108786257B3600506077?OpenDocument","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"How Does NI Security Update 67L8J3QW for Lookout Affect Me? - National Instruments","mime":"text/html","httpstatus":"404","archivestatus":"200"},{"url":"http://digital.ni.com/public.nsf/websearch/507DEC9DA57A708186257B3600512623?OpenDocument","name":"http://digital.ni.com/public.nsf/websearch/507DEC9DA57A708186257B3600512623?OpenDocument","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"How Do The NI Q2 2013 Security Updates Affect Me? - National Instruments","mime":"text/html","httpstatus":"404","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2013-5026","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2013-5026","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2013","cve_id":"5026","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"lookout","cpe6":"6.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"5026","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"lookout","cpe6":"6.6","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"5026","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"ni","cpe5":"lookout","cpe6":"6.7","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-06T16:59:41.248Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://digital.ni.com/public.nsf/websearch/A792DE0703C8108786257B3600506077?OpenDocument"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://digital.ni.com/public.nsf/websearch/507DEC9DA57A708186257B3600512623?OpenDocument"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://digital.ni.com/public.nsf/allkb/544407ECC5FEE44086257BCF00735D1F?OpenDocument"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2013-05-20T00:00:00.000Z","descriptions":[{"lang":"en","value":"An ActiveX control in lookout650.ocx, lookout660.ocx, and lookout670.ocx in National Instruments Lookout 6.5 through 6.7 allows remote attackers to execute arbitrary code by triggering the download of, and calls to, an arbitrary DLL file."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2013-09-17T09:00:00.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"http://digital.ni.com/public.nsf/websearch/A792DE0703C8108786257B3600506077?OpenDocument"},{"tags":["x_refsource_CONFIRM"],"url":"http://digital.ni.com/public.nsf/websearch/507DEC9DA57A708186257B3600512623?OpenDocument"},{"tags":["x_refsource_CONFIRM"],"url":"http://digital.ni.com/public.nsf/allkb/544407ECC5FEE44086257BCF00735D1F?OpenDocument"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2013-5026","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"An ActiveX control in lookout650.ocx, lookout660.ocx, and lookout670.ocx in National Instruments Lookout 6.5 through 6.7 allows remote attackers to execute arbitrary code by triggering the download of, and calls to, an arbitrary DLL file."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"http://digital.ni.com/public.nsf/websearch/A792DE0703C8108786257B3600506077?OpenDocument","refsource":"CONFIRM","url":"http://digital.ni.com/public.nsf/websearch/A792DE0703C8108786257B3600506077?OpenDocument"},{"name":"http://digital.ni.com/public.nsf/websearch/507DEC9DA57A708186257B3600512623?OpenDocument","refsource":"CONFIRM","url":"http://digital.ni.com/public.nsf/websearch/507DEC9DA57A708186257B3600512623?OpenDocument"},{"name":"http://digital.ni.com/public.nsf/allkb/544407ECC5FEE44086257BCF00735D1F?OpenDocument","refsource":"CONFIRM","url":"http://digital.ni.com/public.nsf/allkb/544407ECC5FEE44086257BCF00735D1F?OpenDocument"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2013-5026","datePublished":"2013-08-06T18:00:00.000Z","dateReserved":"2013-07-31T00:00:00.000Z","dateUpdated":"2024-08-06T16:59:41.248Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2013-08-06 20:55:05","lastModifiedDate":"2026-04-29 01:13:23","problem_types":["NVD-CWE-noinfo","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ni:lookout:6.5:*:*:*:*:*:*:*","matchCriteriaId":"3633BF4C-623F-48E4-A89B-118A3ACB9D2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:ni:lookout:6.6:*:*:*:*:*:*:*","matchCriteriaId":"86CD3849-E24D-4115-BB44-93BAB95EA70D"},{"vulnerable":true,"criteria":"cpe:2.3:a:ni:lookout:6.7:*:*:*:*:*:*:*","matchCriteriaId":"FE1B3D04-F37B-493D-B9C3-3739777EB4FD"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2013","CveId":"5026","Ordinal":"1","Title":"CVE-2013-5026","CVE":"CVE-2013-5026","Year":"2013"},"notes":[{"CveYear":"2013","CveId":"5026","Ordinal":"1","NoteData":"An ActiveX control in lookout650.ocx, lookout660.ocx, and lookout670.ocx in National Instruments Lookout 6.5 through 6.7 allows remote attackers to execute arbitrary code by triggering the download of, and calls to, an arbitrary DLL file.","Type":"Description","Title":"CVE-2013-5026"},{"CveYear":"2013","CveId":"5026","Ordinal":"2","NoteData":"2013-08-06","Type":"Other","Title":"Published"},{"CveYear":"2013","CveId":"5026","Ordinal":"3","NoteData":"2013-09-17","Type":"Other","Title":"Modified"}]}}}